| Requirement | Status | Notes |
|---|---|---|
| Basic Privacy Structure | ✅ Compliant | Meets baseline requirements |
| DPDP Act 2023 Reference | ✅ Included | Data Fiduciary obligations stated |
| IT Act 2000 / SPDI Rules | ✅ Included | Sensitive data handling covered |
| Grievance Officer Clause | ✅ Included | Legally mandatory under IT Rules |
| Cross-Border Transfer Disclosure | ✅ Included | Cloud / third-party services disclosed |
| Legal Basis for Processing | ✅ Included | 4 grounds stated as per DPDP Act |
| Children's Privacy (Under 18) | ✅ Compliant | Age restriction maintained |
| Data Retention Timeframes | ✅ Included | Aligned with Indian tax law (7 years) |
At Skanda AI Systems ("we," "our," or "us"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (www.skandaaisystems.com) or use our services.
By using our Services, you consent to the data practices described in this Privacy Policy.
We collect information that you provide directly to us, including:
- Personal Information: Name, email address, phone number, business address, and other contact details
- Business Information: Company name, business registration details, and professional information
- Sensitive Personal Data or Information (SPDI): GST number, PAN, financial information, and bank account details
- Service Information: Details about the services you request, inquiries, and communications with us
- Technical Information: IP address, browser type, device information, and usage data when you visit our website
We use the information we collect to:
- Provide, maintain, and improve our services
- Process your requests and transactions
- Communicate with you about our services, updates, and promotional offers
- Comply with legal obligations and regulatory requirements
- Protect our rights, property, and safety, as well as that of our clients
- Analyze website usage and trends to enhance user experience
3.1 Legal Basis for Processing
We process your personal data on the following legal bases as required under the Digital Personal Data Protection Act, 2023:
| Legal Basis | Description |
|---|---|
| Consent | Where you have given explicit permission for a specific purpose |
| Contractual Necessity | To perform our services as agreed between us |
| Legal Obligation | To comply with applicable Indian laws and regulations |
| Legitimate Interests | For business operations, security, fraud prevention, and service improvement |
We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:
- Service Providers: With trusted third-party service providers (including cloud hosting, analytics, and payment processors) who assist us in operating our business, bound by confidentiality obligations
- Legal Requirements: When required by law, court order, or government regulation including requirements under Indian law
- Business Transfers: In connection with a merger, acquisition, or sale of assets, subject to confidentiality protections
- With Your Consent: When you have given us explicit written permission to share your information
We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction — in compliance with the IT (Reasonable Security Practices and Procedures) Rules, 2011.
We use encryption, secure servers, and access controls to safeguard your data. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
5.1 Cross-Border Data Transfers
We may transfer your personal data to servers or service providers located outside India, including cloud hosting platforms and analytics services. Such transfers are made only to entities that provide adequate data protection measures consistent with applicable Indian law. By using our services, you acknowledge and consent to such transfers.
Under the Digital Personal Data Protection Act, 2023, the IT Act 2000, and applicable Indian law, you have the right to:
- Access and receive a copy of your personal information held by us
- Know the identity of all Data Fiduciaries and Data Processors with whom your data has been shared
- Correct inaccurate or incomplete information
- Request erasure (deletion) of your personal information, subject to legal retention requirements
- Object to or restrict the processing of your information
- Nominate a person to exercise your rights in the event of your death or incapacity (DPDP Act, 2023)
- Withdraw consent at any time where we rely on consent for processing
- File a complaint with the Data Protection Board of India or relevant data protection authority
To exercise any of these rights, please contact our Grievance Officer as detailed in Clause 12.
We use cookies and similar tracking technologies to collect and store information about your preferences and activity on our website. The types of cookies we use include:
| Cookie Type | Purpose |
|---|---|
| Essential Cookies | Required for the basic functioning of the website |
| Analytics Cookies | Used to understand how visitors interact with our website (e.g., Google Analytics) |
| Marketing Cookies | Used to deliver relevant content and track campaign effectiveness |
You can control cookies through your browser settings. Disabling certain cookies may affect website functionality. By continuing to use our website, you consent to our use of cookies as described above.
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. As a general guideline:
| Data Category | Retention Period |
|---|---|
| Client & Business Records | Minimum 7 years as required under Indian tax laws (Income Tax Act, GST Act) |
| Marketing & Communication Data | Until you withdraw consent or unsubscribe |
| Website Technical Data | Up to 12 months |
Upon expiry of the retention period, your personal data will be securely deleted or anonymized.
Our Services are not intended for individuals under the age of 18 years. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact our Grievance Officer immediately and we will take steps to delete such information.
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of any material changes by:
- Posting the updated Privacy Policy on this page with a revised "Last Updated" date
- Sending an email notification to registered users for significant changes
Your continued use of our services after the effective date of the updated policy constitutes your acceptance of the changes.
For general queries about this Privacy Policy or our data practices, please contact us:
Skanda AI Systems
In accordance with the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023, Skanda AI Systems has designated a Grievance Officer to address concerns related to personal data processing.
Skanda AI Systems — Grievance Officer
| Designation | Grievance Officer, Skanda AI Systems |
| info@skandaaisystems.com | |
| Phone | +91 77955 27555 |
| Address | Bengaluru, Karnataka, India |
| Acknowledgement | Within 48 hours of receipt |
| Resolution | Within 30 days of receipt of complaint |
If you are not satisfied with our response, you may escalate your complaint to the Data Protection Board of India (once operationalized under the DPDP Act, 2023) or approach any other competent authority under applicable Indian law.
This Privacy Policy was reviewed and finalized to comply with the Digital Personal Data Protection Act, 2023 and IT Act 2000 prior to website go-live.
© 2026 Skanda AI Systems. All Rights Reserved.